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IN THE CUVIMS 

Please consider the claims as follows: 
1. (previously presented) A method for providing client access to the Internet or other 
network, comprising: 

offering, at a first point of sen/ice. a Local Area Networic (LAN) connected to the 
Intemet or other network; 

connecting at least one client computer to said LAN; 

configuring networking parameters of each of said at least one client computer 

establishing a secure tunnel between a service provider and each of said at least 
one client computer, such that the service provider provides Internet or other network 
service through the secure tunnel to only each one of said at least one client computer; 

negotiating, at the first point of service, the network usage terms and prices with 
each one of said at least one client computer; 

providing the Internet or other network service at the first point of service to each 
one of the at least one client computer in accordance with the networi< usage tenns and 
prices via a second point of service associated with the service provider, wherein a 
service provider that provides the client access obtains access services from another 
sen/ice provider; and 

constraining client device usage according to said negotiated network usage 
terms, said client device usage being measured as two or more of an amount of data 
received, an amount of data transmitted and an elapsed time. 

2. (previously presented) The method of claim 1, further comprising establishing a 
contract at the first point of service, wherein the contract defines the network usage 
terms and prices negotiated between the client and the service provider. 

3. (original) The method of Claim 2 wherein the contract does not depend on a previous 
or subsequent relationship between client and service provider. 

4. (original) The method of claim 2 wherein the user of the client computer may select 
as short a contract term as the user of the client computer desires. 
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5. (cancelled) 

6. (original) The method of claim 2 wherein the client may choose a hard usage limit, 
such that the sen/ice provider temiinates the contract when the hard limit Is reached, 

7. (original) The method of claim 2 wherein the user of the client computer may request 
contract termination. 

8. (previously presented) The method of claim 2 wherein, after receiving a deposit, the 
sen/ice provider sends to the client computer a receipt that the client computer may use 
to recover from a client computer or service provider failure, obtaining access again on 
the same contract. 

9. (original) The method of claim 8 wherein the receipt contains all the information 
required for recovery. 

10. (original) The method of claim 2 wherein the contract is established and the client 
may monitor and control its usage via a Transport Layer Security protocol or via a 
Secure Socket Layer connection. 

11. (original) The method of claim 1 wherein the service provider owns or rents the 
premises at the point of access. 

12. (original) The method of claim 1 wherein access is provided in one of an airport, 
hotel, conference center, or a multi-tenant building. 

13. (cancelled) 

14. (original) The method of claim 1 wherein a service provider that provides client 
access is connected to the Internet by one or more Digital Subscriber Lines (DSL), T1 
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or other dedicated telephone lines, Integrated Services Digital Network (ISDN) lines, or 
cable modems. 

15. (original) The method of clainn 1 wherein a service provider that provides the client 
access uses Network Address Translation. 

16. (original) The method of claim 1 wherein the network configuration of client 
computers is automatic. 

17. (original) The method of claim 16 wherein the network configuration of client 
computers is performed by the Dynamic Host Configuration Protocol. 

18. (original) The method of claim 1 where packets sent from the client computer to or 
via a service provider are authenticated. 

19. (original) The method of claim 1 where packets sent from or via a sen/ice provider 
to the client computer are authenticated. 

20. (original) The method of claim 1 where packets sent between the client computer 
and a service provider are encrypted. 

21. (original) The method of claim 1 wherein the client computer may choose whether 
packets sent from or via a service provider to the client computer should be 
authenticated, or whether packets sent between the client computer and a service 
provider should be encrypted. 

22. (original) The method of claim 1 wherein the client may choose how a service 
provider measures the client's usage. 

23. (original) The method of claim 1 wherein the client may choose a soft usage limit, 
such that the service provider suspends service to the Client when the soft limit is 
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reached and sends a notification to the client, and the client may resume service and 
set a new soft limit by sending a message to the service provider. 

24. (original) The method of claim 1, further comprising the client paying for said 
Internet or other network service, wherein the payment is offline. 

25. (original) The method of claim 24 wherein payment is by one or more of the 
following options: cash, credit card, and debiting from another account 

26. (original) The method of claim 1, further comprising the client paying for said 
(ntemet or other network service, wherein the payment is online. 

27. (original) The method of claim 26 wherein payment is by one or more of the 
following options: eCASH®. SECURE ELECTRONIC TRANSACTIONS (SET)®, IBM 
MICROPAYMENTS® or MILLICENT®. 

28. (original) The method of claim 26 wherein online payment, no matter how 
implemented, is performed through an authenticated and/or encrypted tunnel, and 
therefore is automatically and securely bound to it. 

29. (original) The method of claim 1 , further comprising paying for said Internet or other 
network service, wherein a user of the client computer can choose the payment method 
or a combination of payment methods. 

30. (original) The method of claim 1 wherein the user of the client computer may 
monitor and control the client computer usage. 

31 . (original) The method of claim 1 wherein the user of the client computer, before 
gaining service, pays to the service provider a deposit corresponding to a hard usage 
limit. 
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32. (original) The method of claim 31 wherein the user of the client computer, before 
gaining service, pays to the service provider a deposit, and, when the user requests 
contract termination, the service provider returns to the user the difference between the 
deposit and actual usage. 

33. (original) The method of claim 1 wherein the client computers are not portable. 

34. (original) The method of claim 1 wherein the dient computers are portable. 

35. (original) The method of claim 1 wherein the dient computers are wearable. 

36. (original) The method of claim 1 wherein the LAN confonns to a standard. 

37. (original) The method of claim 36 wherein the LAN is an Ethemet. 

38. (original) The method of claim 36 wherein the LAN is an 802.1 1 wireless network. 

39. (original) The method of claim 1 wherein security protocols used by the secure 
tunnel are standard. 

40. (original) The method of claim 39 wherein the security protocols belong to the 
IPSec protocol suite of the Intemet Engineering Task Force (IETF), 

41. (original) The method of claim 40 wherein the client computer uses a self-signed 
certificate. 

42. (original) The method of claim 40 wherein the service provider uses a certificate 
signed by a Certification Authority (CA). 

43. (original) The method of claim 42 wherein the Certification Authority (CA) has 
special procedures for certifying service providers. 
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44. (original) The method of claim 42 wherein the certificate includes the location and 
type of LAN used by the service provider 

45. (original) The method of claim 42 wherein the packets sent from the client 
computer to or via the service provider are authenticated using IPsec's Authentication 
Header (AH). 

46. (original) The method of claim 42 wherein the packets sent from or via the service 
provider to the client computer may be authenticated using IPsec's Authentication 
Header (AH). 

47. (original) The method of claim 42 wherein the packets sent between client 
computer and a service provider may be authenticated and/or encrypted using IPsec's 
Encapsulating Security Payload (ESP). 

48. (original) The method of claim 41 wherein the security protocol is Point-to-Point 
Tunneling Protocol (PPTP). 

49. (original) The method of claim 1 wherein the user of the client computer does not 
reveal Its identity to the sen/Ice provider. 

50. (original) The method of claim 1 wherein a secure connection is established 
between client and service provider, and wherein the secure connection is used to 
communicate secrets used for establishing a secure tunnel between those parties. 

51. (original) The method of claim 1 wherein sen/ice provider functionality Is 
implemented by an integrated router/sen/en 

52. (original) The method of claim 1 wherein sen/ice provider functionality is 
implemented Dy separate router and server. 
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53. (previously presented) A method for providing metered access to the Internet, 
comprising: 

accessing, via a local area network (LAN), the Internet, utilizing a first polnt-of- 
access of a service provider; 

establishing a secure tunnel with said service provider by exchanging 
authentication certificates with said first polnt-of-access of said service provider; 

negotiating network usage terms for Internet access with said service provider at 
p]] said first point of access; 

accessing said Internet from said service provider according to said negotiated 
usage terms via a second point of access of said service provider coupled between said 
first point of access and the Internet, wherein a service provider that provides the client 
access obtains access services from another service provider and 

constraining client device usage according to said negotiated network usage 
terms, said client device usage being measured as two or more of an amount of data 
received, an amount of data transmitted and an elapsed tlme. 

54. (original) The method of claim 53, wherein a self-signed authentication certificate is 
provided to said service provider during said authentication. 

55. (cancelled). 

56. (previously presented) The method of dalm 53, wherein the contract established 
between the client and the service provider to access the Internet can last for a duration 
selected by the client. 

57. (cancelled) 
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